563ad2d0122cb08163fd8b345200a46e0c66fcb3805f4cfbe0882b411d781749 | Triage

Sharing

General

Target

563ad2d0122cb08163fd8b345200a46e0c66fcb3805f4cfbe0882b411d781749
Size

313KB
Sample

221124-edre7aae5z
MD5

c5b05c10a03c5678a98030c8faa2d8fd
SHA1

fcdbea4834bcbd06b5f6a7d0c79042470d97eb81
SHA256

563ad2d0122cb08163fd8b345200a46e0c66fcb3805f4cfbe0882b411d781749
SHA512

d38298c9baddefe589cbad817258453c7287df585a4bbf354b204ad79636cf149452d91d33ac7d7135c028cbbae724947f19e2773b9c5bcb4d58c50d34650b01
SSDEEP

6144:Zrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMQ:ZrRu6/eIo4t3PuFITKUAb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  563ad2d0122cb08163fd8b345200a46e0c66fcb3805f4cfbe0882b411d781749
- Size
  
  313KB
- MD5
  
  c5b05c10a03c5678a98030c8faa2d8fd
- SHA1
  
  fcdbea4834bcbd06b5f6a7d0c79042470d97eb81
- SHA256
  
  563ad2d0122cb08163fd8b345200a46e0c66fcb3805f4cfbe0882b411d781749
- SHA512
  
  d38298c9baddefe589cbad817258453c7287df585a4bbf354b204ad79636cf149452d91d33ac7d7135c028cbbae724947f19e2773b9c5bcb4d58c50d34650b01
- SSDEEP
  
  6144:Zrb9uEo2S1YnQmCX492DkwNP3qpYFl2YyPuFITzyccux7rnrOzprCoMQ:ZrRu6/eIo4t3PuFITKUAb
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2